Re: [dss] FW: Here is the TimeStamp scope question to post to the list.

[Trevor Perrin <trevp@trevp.net>]

At 09:22 PM 9/16/2003 -0400, Rich Salz wrote:
>[...]
>Does the reasoning make sense?

I think so, let me try to rephrase and interpret a bit.

You'd like to see a sorta "micro-core" which has the *bare minimum* 
required to process signatures.  Maybe this is just the ability to send 
document(s) and get back a signature/signed document or verification response?

Then everything else would be relegated to options, and profiles would 
mix-in some set of options into the micro-core?

If this makes sense, what exactly do you see in the micro-core?  For 
example, where would you allocate these things -
  - RequestID (to correlate requests/responses)
  - ClaimedIdentity (the requestor's identity)
  - IntendedAudience (who the signature is meant for)
  - KeySelector (which key to use)
  - SignedProperties/UnsignedProperties (explicit properties to add into 
signature)
  - SignaturePlacement (where to stick the signature)
  - SignatureContents (what the signature covers, and what transforms to 
apply to each thing)
  - OutputOptions (what outputs to return - just the signature?  the 
document containing the signature?  The post-transformed Input documents?)

I'm just curious what's the bare essentials you think our "core" or 
"micro-core" or whatever should support.


Trevor